Firewall config and ftp server
Edward. S. P. Leong
edwardspl at ita.org.mo
Thu Mar 11 16:17:25 UTC 2010
Rick Stevens wrote:
>On 03/09/2010 07:47 PM, NoSpaze wrote:
>
>
>>Am Dienstag, den 09.03.2010, 23:09 +0800 schrieb Edward. S. P. Leong:
>>
>>
>>>NoSpaze wrote:
>>>
>>>
>>>># modprobe ip_tables
>>>>FATAL: Module ip_tables not found.
>>>>
>>>>
>>Again: this module does not exist! Maybe ip_nat or nf_nat?
>>
>>
>
>To clarify, several kernels ago the IPV4 iptables was defaulted to being
>built into the kernel so it doesn't need a modprobe or insmod. Ditto
>with the IPV4 conntrack (snippet of the default kernel config file):
>
>CONFIG_NF_DEFRAG_IPV4=y <<<---- Built into kernel
>CONFIG_NF_CONNTRACK_IPV4=y <<<---- Built into kernel
># CONFIG_NF_CONNTRACK_PROC_COMPAT is not set
>CONFIG_IP_NF_QUEUE=m <<<---- Module
>CONFIG_IP_NF_IPTABLES=y <<<---- Built into kernel
>
>So remove those items from your /etc/modprobe.conf file. It is also not
>necessary to modprobe things like the NAT module and such...if
>there are rules in your iptables config that require them, they'll
>be drug in by iptables itself. The "modprobe"able modules can be
>found by doing a
>
> ls /lib/modules/`uname -r`/kernel/net/ipv4/netfilter
>
>
Hello to you,
Would you mind to tell me how to apply the following iptables module
into FC11 System ?
ip_nat_ftp
ip_conntrack_ftp
Thanks !
Edward.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.fedoraproject.org/pipermail/users/attachments/20100312/e4325d09/attachment.html
More information about the users
mailing list